<?php
/*
  $Id$

  osCommerce, Open Source E-Commerce Solutions
  http://www.oscommerce.com

  Copyright (c) 2010 osCommerce

  Released under the GNU General Public License
*/

  require('includes/application_top.php');

  require(DIR_WS_LANGUAGES . $language . '/' . FILENAME_PASSWORD_FORGOTTEN);

  if (isset($HTTP_GET_VARS['action']) && ($HTTP_GET_VARS['action'] == 'process') && isset($HTTP_POST_VARS['formid']) && ($HTTP_POST_VARS['formid'] == $sessiontoken)) {
    $email_address = tep_db_prepare_input($HTTP_POST_VARS['email_address']);

    $check_customer_query = tep_db_query("select customers_firstname, customers_lastname, customers_password, customers_id from " . TABLE_CUSTOMERS . " where customers_email_address = '" . tep_db_input($email_address) . "'");
    if (tep_db_num_rows($check_customer_query)) {
      $check_customer = tep_db_fetch_array($check_customer_query);

      $new_password = tep_create_random_value(ENTRY_PASSWORD_MIN_LENGTH);
      $crypted_password = tep_encrypt_password($new_password);

      tep_db_query("update " . TABLE_CUSTOMERS . " set customers_password = '" . tep_db_input($crypted_password) . "' where customers_id = '" . (int)$check_customer['customers_id'] . "'");

      tep_mail($check_customer['customers_firstname'] . ' ' . $check_customer['customers_lastname'], $email_address, EMAIL_PASSWORD_REMINDER_SUBJECT, sprintf(EMAIL_PASSWORD_REMINDER_BODY, $new_password), STORE_OWNER, STORE_OWNER_EMAIL_ADDRESS);

      $messageStack->add_session('login', SUCCESS_PASSWORD_SENT, 'success');

      tep_redirect(tep_href_link(FILENAME_LOGIN, '', 'SSL'));
    } else {
      $messageStack->add('password_forgotten', TEXT_NO_EMAIL_ADDRESS_FOUND);
    }
  }

  $breadcrumb->add(NAVBAR_TITLE_1, tep_href_link(FILENAME_LOGIN, '', 'SSL'));
  $breadcrumb->add(NAVBAR_TITLE_2, tep_href_link(FILENAME_PASSWORD_FORGOTTEN, '', 'SSL'));

  require(DIR_WS_INCLUDES . 'template_top.php');

  if ($messageStack->size('password_forgotten') > 0) {
    echo $messageStack->output('password_forgotten');
  }
?>

<div id="left" style="width:600px;"><?php echo tep_draw_form('password_forgotten', tep_href_link(FILENAME_PASSWORD_FORGOTTEN, 'action=process', 'SSL'), 'post', '', true); ?>
    <div class="contentdescription">
        <div class="wrap_image">&nbsp;</div>
    </div>
	    <h1 style="font-weight:normal;"><?php echo HEADING_TITLE; ?></h1>
    <div id="wrap_login">
	<div class="openingsuren_TL_corner">
        <div class="openingsuren_BR_corner">
            <table border="0" cellpadding="0" cellspacing="0" width="500">
                <tbody>
                <tr><td colspan="4"><?php echo TEXT_MAIN; ?></td></tr> 
                <tr><td colspan="4">&nbsp;</td></tr>
            	<tr align="left">
                    <td width="148px"><?php echo ENTRY_EMAIL_ADDRESS; ?></td>
                    <td width="10px">&nbsp;</td>
                    <td colspan="2"><input style="border-radius:10px;" name="email_address" class="inputbox" size="20" type="text"></td>
            	</tr>
                <tr><td colspan="4">&nbsp;</td></tr>
                <tr>
                    <td colspan="2"><?php echo tep_draw_button(IMAGE_BUTTON_BACK, 'triangle-1-w', tep_href_link(FILENAME_LOGIN, '', 'SSL')); ?></td>    
            		<td align="right"><input name="submit" class="button" value="<?php echo IMAGE_BUTTON_CONTINUE; ?>" type="submit"></td>
                    <td width="28"></td>
            	</tr>
            </tbody></table>
            <div class="clear"></div>
		</div>
    </div></div>
</form></div>
<!--end #left -->
<div id="right"></div>

<?php
  require(DIR_WS_INCLUDES . 'template_bottom.php');
  require(DIR_WS_INCLUDES . 'application_bottom.php');
?>
